medol-be/app/middleware/register.middleware.go

package middleware

import (
	"github.com/gofiber/fiber/v2/middleware/csrf"
	"github.com/gofiber/fiber/v2/middleware/session"
	"go-humas-be/app/database"
	"go-humas-be/config/config"
	utilsSvc "go-humas-be/utils"
	"log"
	"time"

	"github.com/gofiber/fiber/v2"
	"github.com/gofiber/fiber/v2/middleware/compress"
	"github.com/gofiber/fiber/v2/middleware/cors"
	"github.com/gofiber/fiber/v2/middleware/limiter"
	"github.com/gofiber/fiber/v2/middleware/monitor"
	"github.com/gofiber/fiber/v2/middleware/pprof"
	"github.com/gofiber/fiber/v2/middleware/recover"
	"github.com/gofiber/fiber/v2/utils"
)

// Middleware is a struct that contains all the middleware functions
type Middleware struct {
	App *fiber.App
	Cfg *config.Config
}

func NewMiddleware(app *fiber.App, cfg *config.Config) *Middleware {
	return &Middleware{
		App: app,
		Cfg: cfg,
	}
}

// Register registers all the middleware functions
func (m *Middleware) Register(db *database.Database) {
	// Add Extra Middlewares

	m.App.Use(limiter.New(limiter.Config{
		Next:       utilsSvc.IsEnabled(m.Cfg.Middleware.Limiter.Enable),
		Max:        m.Cfg.Middleware.Limiter.Max,
		Expiration: m.Cfg.Middleware.Limiter.Expiration * time.Second,
	}))

	m.App.Use(compress.New(compress.Config{
		Next:  utilsSvc.IsEnabled(m.Cfg.Middleware.Compress.Enable),
		Level: m.Cfg.Middleware.Compress.Level,
	}))

	m.App.Use(recover.New(recover.Config{
		Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Recover.Enable),
	}))

	m.App.Use(pprof.New(pprof.Config{
		Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Pprof.Enable),
	}))

	m.App.Use(cors.New(cors.Config{
		Next:             utilsSvc.IsEnabled(m.Cfg.Middleware.Cors.Enable),
		AllowOrigins:     "*",
		AllowMethods:     "HEAD, GET, POST, PUT, DELETE, OPTION, PATCH",
		AllowHeaders:     "Origin, Content-Type, Accept, Accept-Language, Authorization, X-Requested-With, Access-Control-Request-Method, Access-Control-Request-Headers",
		ExposeHeaders:    "Content-Length, Content-Type",
		AllowCredentials: false,
		MaxAge:           12,
	}))

	//===============================
	// CSRF CONFIG
	//===============================

	// Custom storage for CSRF
	csrfSessionStorage := &PostgresStorage{
		DB: db.DB,
	}

	// Store initialization for session
	store := session.New(session.Config{
		Storage: csrfSessionStorage,
	})

	m.App.Use(func(c *fiber.Ctx) error {
		sess, err := store.Get(c)
		if err != nil {
			return err
		}
		c.Locals("session", sess)
		return c.Next()
	})

	// Cleanup the expired token
	go func() {
		ticker := time.NewTicker(1 * time.Hour)
		defer ticker.Stop()

		for range ticker.C {
			if err := csrfSessionStorage.Reset(); err != nil {
				log.Printf("Error cleaning up expired CSRF tokens: %v", err)
			}
		}
	}()

	m.App.Use(csrf.New(csrf.Config{
		Next:              utilsSvc.IsEnabled(m.Cfg.Middleware.Csrf.Enable),
		KeyLookup:         "header:" + csrf.HeaderName,
		CookieName:        "csrf_",
		CookieSameSite:    "Lax",
		CookieSecure:      false,
		CookieSessionOnly: true,
		CookieHTTPOnly:    true,
		Expiration:        1 * time.Hour,
		KeyGenerator:      utils.UUIDv4,
		ContextKey:        "csrf",
		ErrorHandler: func(c *fiber.Ctx, err error) error {
			return utilsSvc.CsrfErrorHandler(c, err)
		},
		Extractor:  csrf.CsrfFromHeader(csrf.HeaderName),
		Session:    store,
		SessionKey: "fiber.csrf.token",
	}))

	//===============================

	m.App.Use(AuditTrailsMiddleware(db.DB))
	StartAuditTrailCleanup(db.DB, m.Cfg.Middleware.AuditTrails.Retention)

	//m.App.Use(filesystem.New(filesystem.Config{
	//	Next:   utils.IsEnabled(m.Cfg.Middleware.FileSystem.Enable),
	//	Root:   http.Dir(m.Cfg.Middleware.FileSystem.Root),
	//	Browse: m.Cfg.Middleware.FileSystem.Browse,
	//	MaxAge: m.Cfg.Middleware.FileSystem.MaxAge,
	//}))

	// ==================================================

	m.App.Get(m.Cfg.Middleware.Monitor.Path, monitor.New(monitor.Config{
		Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Monitor.Enable),
	}))

	// Route for generate CSRF token
	m.App.Get("/csrf-token", func(c *fiber.Ctx) error {
		// Retrieve CSRF token from Fiber's middleware context
		token, ok := c.Locals("csrf").(string)

		//c.Context().VisitUserValues(func(key []byte, value interface{}) {
		//	log.Printf("Local Key: %s, Value: %v", key, value)
		//})

		if !ok || token == "" {
			return c.Status(fiber.StatusInternalServerError).JSON(fiber.Map{
				"success":  false,
				"code":     500,
				"messages": []string{"Failed to retrieve CSRF token"},
			})
		}

		return c.JSON(fiber.Map{
			"success":    true,
			"csrf_token": token,
		})
	})
}
feat: initial commit 2024-03-05 19:15:53 +00:00			`package middleware`

			`import (`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`"github.com/gofiber/fiber/v2/middleware/csrf"`
			`"github.com/gofiber/fiber/v2/middleware/session"`
feat: update advertisement, users, articles, etc 2025-04-07 01:12:02 +00:00			`"go-humas-be/app/database"`
feat: initial commit 2024-03-05 19:15:53 +00:00			`"go-humas-be/config/config"`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`utilsSvc "go-humas-be/utils"`
			`"log"`
feat: initial commit 2024-03-05 19:15:53 +00:00			`"time"`

			`"github.com/gofiber/fiber/v2"`
			`"github.com/gofiber/fiber/v2/middleware/compress"`
feat: update cors 2024-04-03 17:43:16 +00:00			`"github.com/gofiber/fiber/v2/middleware/cors"`
feat: initial commit 2024-03-05 19:15:53 +00:00			`"github.com/gofiber/fiber/v2/middleware/limiter"`
			`"github.com/gofiber/fiber/v2/middleware/monitor"`
			`"github.com/gofiber/fiber/v2/middleware/pprof"`
			`"github.com/gofiber/fiber/v2/middleware/recover"`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`"github.com/gofiber/fiber/v2/utils"`
feat: initial commit 2024-03-05 19:15:53 +00:00			`)`

			`// Middleware is a struct that contains all the middleware functions`
			`type Middleware struct {`
			`App *fiber.App`
			`Cfg *config.Config`
			`}`

			`func NewMiddleware(app fiber.App, cfg config.Config) *Middleware {`
			`return &Middleware{`
			`App: app,`
			`Cfg: cfg,`
			`}`
			`}`

			`// Register registers all the middleware functions`
feat: update advertisement, users, articles, etc 2025-04-07 01:12:02 +00:00			`func (m Middleware) Register(db database.Database) {`
feat: initial commit 2024-03-05 19:15:53 +00:00			`// Add Extra Middlewares`
feat: fixing article files upload 2024-05-10 00:57:35 +00:00
feat: initial commit 2024-03-05 19:15:53 +00:00			`m.App.Use(limiter.New(limiter.Config{`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Limiter.Enable),`
feat: initial commit 2024-03-05 19:15:53 +00:00			`Max: m.Cfg.Middleware.Limiter.Max,`
			`Expiration: m.Cfg.Middleware.Limiter.Expiration * time.Second,`
			`}))`

			`m.App.Use(compress.New(compress.Config{`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Compress.Enable),`
feat: initial commit 2024-03-05 19:15:53 +00:00			`Level: m.Cfg.Middleware.Compress.Level,`
			`}))`

			`m.App.Use(recover.New(recover.Config{`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Recover.Enable),`
feat: initial commit 2024-03-05 19:15:53 +00:00			`}))`

			`m.App.Use(pprof.New(pprof.Config{`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Pprof.Enable),`
feat: initial commit 2024-03-05 19:15:53 +00:00			`}))`

feat: update cors 2024-04-03 17:43:16 +00:00			`m.App.Use(cors.New(cors.Config{`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Cors.Enable),`
feat: update cors 2024-04-03 17:48:29 +00:00			`AllowOrigins: "*",`
feat: update put cors 2024-05-03 03:40:01 +00:00			`AllowMethods: "HEAD, GET, POST, PUT, DELETE, OPTION, PATCH",`
feat: update cors 2024-04-03 17:48:29 +00:00			`AllowHeaders: "Origin, Content-Type, Accept, Accept-Language, Authorization, X-Requested-With, Access-Control-Request-Method, Access-Control-Request-Headers",`
			`ExposeHeaders: "Content-Length, Content-Type",`
			`AllowCredentials: false,`
			`MaxAge: 12,`
feat: update cors 2024-04-03 17:43:16 +00:00			`}))`

feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`//===============================`
			`// CSRF CONFIG`
			`//===============================`

			`// Custom storage for CSRF`
			`csrfSessionStorage := &PostgresStorage{`
			`DB: db.DB,`
			`}`

			`// Store initialization for session`
			`store := session.New(session.Config{`
			`Storage: csrfSessionStorage,`
			`})`

			`m.App.Use(func(c *fiber.Ctx) error {`
			`sess, err := store.Get(c)`
			`if err != nil {`
			`return err`
			`}`
			`c.Locals("session", sess)`
			`return c.Next()`
			`})`

			`// Cleanup the expired token`
			`go func() {`
			`ticker := time.NewTicker(1 * time.Hour)`
			`defer ticker.Stop()`

			`for range ticker.C {`
			`if err := csrfSessionStorage.Reset(); err != nil {`
			`log.Printf("Error cleaning up expired CSRF tokens: %v", err)`
			`}`
			`}`
			`}()`

			`m.App.Use(csrf.New(csrf.Config{`
			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Csrf.Enable),`
			`KeyLookup: "header:" + csrf.HeaderName,`
			`CookieName: "csrf_",`
			`CookieSameSite: "Lax",`
			`CookieSecure: false,`
			`CookieSessionOnly: true,`
			`CookieHTTPOnly: true,`
			`Expiration: 1 * time.Hour,`
			`KeyGenerator: utils.UUIDv4,`
			`ContextKey: "csrf",`
			`ErrorHandler: func(c *fiber.Ctx, err error) error {`
			`return utilsSvc.CsrfErrorHandler(c, err)`
			`},`
			`Extractor: csrf.CsrfFromHeader(csrf.HeaderName),`
			`Session: store,`
			`SessionKey: "fiber.csrf.token",`
			`}))`

			`//===============================`

			`m.App.Use(AuditTrailsMiddleware(db.DB))`
			`StartAuditTrailCleanup(db.DB, m.Cfg.Middleware.AuditTrails.Retention)`
feat: update advertisement, users, articles, etc 2025-04-07 01:12:02 +00:00
feat: initial commit 2024-03-05 19:15:53 +00:00			`//m.App.Use(filesystem.New(filesystem.Config{`
			`// Next: utils.IsEnabled(m.Cfg.Middleware.FileSystem.Enable),`
			`// Root: http.Dir(m.Cfg.Middleware.FileSystem.Root),`
			`// Browse: m.Cfg.Middleware.FileSystem.Browse,`
			`// MaxAge: m.Cfg.Middleware.FileSystem.MaxAge,`
			`//}))`

feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`// ==================================================`

feat: initial commit 2024-03-05 19:15:53 +00:00			`m.App.Get(m.Cfg.Middleware.Monitor.Path, monitor.New(monitor.Config{`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00			`Next: utilsSvc.IsEnabled(m.Cfg.Middleware.Monitor.Enable),`
feat: initial commit 2024-03-05 19:15:53 +00:00			`}))`
feat: add csrf token and audit trails 2025-04-09 21:28:46 +00:00
			`// Route for generate CSRF token`
			`m.App.Get("/csrf-token", func(c *fiber.Ctx) error {`
			`// Retrieve CSRF token from Fiber's middleware context`
			`token, ok := c.Locals("csrf").(string)`

			`//c.Context().VisitUserValues(func(key []byte, value interface{}) {`
			`// log.Printf("Local Key: %s, Value: %v", key, value)`
			`//})`

			`if !ok \|\| token == "" {`
			`return c.Status(fiber.StatusInternalServerError).JSON(fiber.Map{`
			`"success": false,`
			`"code": 500,`
			`"messages": []string{"Failed to retrieve CSRF token"},`
			`})`
			`}`

			`return c.JSON(fiber.Map{`
			`"success": true,`
			`"csrf_token": token,`
			`})`
			`})`
feat: initial commit 2024-03-05 19:15:53 +00:00			`}`